$ rpki-client -vvf repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/323030313a6466303a3266633a3a2f34382d3438203d3e203538343034.roa File: 323030313a6466303a3266633a3a2f34382d3438203d3e203538343034.roa (raw, json) Hash identifier: 8zY41tTngWvKTe/HAKHtyytdzc6XdijkL5LcFd6Ewbk= Subject key identifier: 2B:CC:77:80:2C:AD:13:C8:41:97:64:9B:36:13:6C:F1:18:32:79:4E Certificate issuer: /CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Certificate serial: 6498FB94C0DA3183806B2080B0A8612EDEC554A3 Authority key identifier: C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/323030313a6466303a3266633a3a2f34382d3438203d3e203538343034.roa Signing time: Wed 11 Jun 2025 08:02:21 +0000 ROA not before: Wed 11 Jun 2025 07:57:21 +0000 ROA not after: Wed 10 Jun 2026 08:02:21 +0000 asID: 58404 IP address blocks: 2001:df0:2fc::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 08:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:98:fb:94:c0:da:31:83:80:6b:20:80:b0:a8:61:2e:de:c5:54:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2544A0C1EE8ABF9DA0614500930012FFB48871A Validity Not Before: Jun 11 07:57:21 2025 GMT Not After : Jun 10 08:02:21 2026 GMT Subject: CN=2BCC77802CAD13C84197649B36136CF11832794E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ec:33:83:a7:95:bd:7e:6c:99:9f:21:cd:b6: 17:44:6c:2c:34:0f:89:ff:4f:eb:1c:20:4b:5d:7f: 95:45:97:b7:3c:b5:08:06:d6:6b:9b:bf:71:c3:b1: a6:c2:80:fa:b1:e4:3e:ac:92:da:8e:30:73:df:f9: 26:e8:4f:83:f5:09:fc:7c:2f:66:74:88:9f:ba:28: ef:f6:53:0d:d0:af:e6:fa:b8:98:9d:4c:24:e1:48: 12:6e:c3:e6:e9:e6:2d:92:5a:0f:91:00:2d:a2:56: d3:01:9f:14:35:33:d4:74:1d:58:c5:a7:3c:20:25: 9f:82:64:0a:f9:a2:57:dd:e4:fb:2f:40:e9:e7:66: c5:5d:56:59:15:9c:28:2b:48:9b:b3:1c:59:f1:d0: 06:dc:b2:d6:cd:73:6f:f5:b7:17:03:e9:96:f4:d7: ca:aa:99:c9:9e:ff:0b:24:3c:1a:2f:70:89:0e:3e: bd:54:2c:35:f1:04:6c:41:fc:b2:c9:e7:9b:ec:fe: ad:94:50:ed:17:16:dc:56:47:2b:8f:d5:c6:e0:99: b4:9b:87:73:b7:40:d1:bb:76:d4:c0:1c:82:8d:29: 61:93:7c:c4:14:24:db:b7:aa:15:b8:55:79:ea:df: 4a:56:f7:74:b4:9c:f8:6d:33:20:68:30:5d:e0:ff: f5:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:CC:77:80:2C:AD:13:C8:41:97:64:9B:36:13:6C:F1:18:32:79:4E X509v3 Authority Key Identifier: keyid:C2:54:4A:0C:1E:E8:AB:F9:DA:06:14:50:09:30:01:2F:FB:48:87:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/C2544A0C1EE8ABF9DA0614500930012FFB48871A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2544A0C1EE8ABF9DA0614500930012FFB48871A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e0f9163-3e5a-4efa-8bd9-4ac4bc630414/0/323030313a6466303a3266633a3a2f34382d3438203d3e203538343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:2fc::/48 Signature Algorithm: sha256WithRSAEncryption 0a:8b:79:9b:3c:b7:f5:b6:c9:f3:c7:67:7f:7c:eb:25:93:bc: 80:6a:db:2f:b5:11:5d:45:5a:cf:24:3c:11:db:70:82:97:dc: 58:e2:29:fb:9a:ba:76:90:cd:37:aa:f9:0c:23:b2:fa:36:b2: 68:56:7b:ed:fe:84:35:61:8f:62:15:09:eb:1c:49:fc:06:2a: a0:00:4a:4d:77:6a:de:d8:70:1f:ff:da:f0:aa:5d:88:32:da: 5e:6a:a6:bc:2c:71:89:8c:ca:b6:ab:91:28:51:b6:75:69:40: 18:07:46:a9:88:3d:35:ed:13:51:75:cd:c2:23:02:e4:9f:06: e3:5c:f2:cb:ce:ae:bc:b6:93:63:ad:21:e7:70:ca:8f:11:66: 0c:ae:6a:d0:6d:dc:45:21:c4:6e:aa:12:72:dd:8c:0f:18:cc: b2:e8:16:62:03:a5:b4:7b:76:31:d0:af:0e:a7:0f:89:6e:c0: bc:14:34:b6:3b:7f:d4:a1:b5:6e:78:f6:d3:8d:72:a7:fb:72: e7:3a:a8:b9:70:11:49:8a:f5:79:31:61:ab:13:08:e5:43:ef: e5:6e:de:4d:4c:c1:71:70:d0:17:a2:01:2f:c3:86:62:7f:27: cb:02:33:f8:c0:53:6b:3b:f6:30:14:36:8e:81:4e:a7:35:29: be:cd:02:cc -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUZJj7lMDaMYOAayCAsKhhLt7FVKMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZG QjQ4ODcxQTAeFw0yNTA2MTEwNzU3MjFaFw0yNjA2MTAwODAyMjFaMDMxMTAvBgNV BAMTKDJCQ0M3NzgwMkNBRDEzQzg0MTk3NjQ5QjM2MTM2Q0YxMTgzMjc5NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC37DODp5W9fmyZnyHNthdEbCw0 D4n/T+scIEtdf5VFl7c8tQgG1mubv3HDsabCgPqx5D6sktqOMHPf+SboT4P1Cfx8 L2Z0iJ+6KO/2Uw3Qr+b6uJidTCThSBJuw+bp5i2SWg+RAC2iVtMBnxQ1M9R0HVjF pzwgJZ+CZAr5olfd5PsvQOnnZsVdVlkVnCgrSJuzHFnx0AbcstbNc2/1txcD6Zb0 18qqmcme/wskPBovcIkOPr1ULDXxBGxB/LLJ55vs/q2UUO0XFtxWRyuP1cbgmbSb h3O3QNG7dtTAHIKNKWGTfMQUJNu3qhW4VXnq30pW93S0nPhtMyBoMF3g//UdAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUK8x3gCytE8hBl2SbNhNs8RgyeU4wHwYDVR0j BBgwFoAUwlRKDB7oq/naBhRQCTABL/tIhxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTBmOTE2My0zZTVhLTRlZmEtOGJkOS00YWM0YmM2MzA0MTQvMC9DMjU0NEEwQzFF RThBQkY5REEwNjE0NTAwOTMwMDEyRkZCNDg4NzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1NDRBMEMxRUU4QUJGOURBMDYxNDUwMDkzMDAxMkZGQjQ4 ODcxQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMGY5MTYzLTNlNWEtNGVmYS04 YmQ5LTRhYzRiYzYzMDQxNC8wLzMyMzAzMDMxM2E2NDY2MzAzYTMyNjY2MzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDMwMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3wAvww DQYJKoZIhvcNAQELBQADggEBAAqLeZs8t/W2yfPHZ3986yWTvIBq2y+1EV1FWs8k PBHbcIKX3FjiKfuaunaQzTeq+Qwjsvo2smhWe+3+hDVhj2IVCescSfwGKqAASk13 at7YcB//2vCqXYgy2l5qprwscYmMyrarkShRtnVpQBgHRqmIPTXtE1F1zcIjAuSf BuNc8svOrry2k2OtIedwyo8RZgyuatBt3EUhxG6qEnLdjA8YzLLoFmIDpbR7djHQ rw6nD4luwLwUNLY7f9ShtW549tONcqf7cuc6qLlwEUmK9XkxYasTCOVD7+Vu3k1M wXFw0BeiAS/DhmJ/J8sCM/jAU2s79jAUNo6BTqc1Kb7NAsw= -----END CERTIFICATE-----Generated at Mon Jun 30 12:33:00 2025 by rpki-client